Job Description

Tracking Code
2968-317
Job Description

McKean Defense is an employee owned Naval Life Cycle Management, Engineering, Enterprise Transformation and Program Management business headquartered in Philadelphia, PA. McKean’s engineers, developers, technical staff, programmers, analysts, and program managers identify and deploy new shipboard technologies, integrate information technology across shipboard platforms, and develop strategies to support the Warfighter. McKean’s employees create strategic solutions to help customers reach new levels of mission support and transform their organizations.

McKean Defense Group is seeking a Information System Security Manager (ISSM)

ISSM roles/responsibilities:

1) RESPONSIBLE FOR THE CYBERSECURITY OF A NAVY CONTROL SYSTEM-OF SYSTEMS, NAVY CONTROL SYSTEM-OF-SYSTEMS SUBSYSTEM OR A STANDALONE NAVY CONTROL SYSTEM, BALANCING RISKS AND IMPACTS TO THE SYSTEM(S) AND THE MISSIONS THEY SUPPORT; THE ISSM IS ACCOUNTABLE TO THE SYSTEM PROGRAM MANAGER/OWNER.

2) RESPONSIBLE FOR WORKING WITH THE SYSTEM ENGINEERS AND SYSTEM INFORMATION SYSTEM SECURITY ENGINEERS (ISSES) TO DERIVE, DEFINE, ALLOCATE AND DOCUMENT THE CYBERSECURITY FUNCTIONAL, PERFORMANCE, DESIGN, TESTING AND EVALUATION REQUIREMENTS FROM NUMEROUS FEDERAL, DOD AND DON SOURCES TO INCLUDE, BUT NOT LIMITED TO: DODI 8500.1, DOD 8510.01, NIST SP 800-53, CNSSI 1253, NAVSEA 9400.2-M, FIPS-199, and US NAVY CROSS-SYSCOM IA TAB STANDARDS.

3) MAINTAINS THE CYBERSECURITY POA&MS FOR THE DEFINED CYBERSECURITY REQUIREMENTS, SUPPORTED BY THE SYSTEM ENGINEERS AND SYSTEM INFORMATION SYSTEM SECURITY ENGINEERS (ISSES).

4) RESPONSIBLE FOR PROVIDING FOCUSED CYBERSECURITY PLANS, PROCESSES, GUIDANCE AND RISK ASSESSMENTS TO THE PROGRAM MANAGER/OWNER, SYSTEM ENGINEERS AND SYSTEM INFORMATION SYSTEM SECURITY ENGINEERS (ISSES).

5) PROVIDE CYBERSECURITY TECHNICAL DESIGN SUPPORT IN A WAY THAT WILL RESULT IN AN ACCEPTABLE LEVEL OF RISK TO THE OPERATIONAL SYSTEM.

6) SUPPORTS CYBERSECURITY RISK ASSESSMENTS (E.G. CAKE), CYBER TABLE TOPS (CTTS) AND ANY REQUISITE PENETRATION TESTING.

7) PERFORM ALL REQUIRED AND APPROVED INFORMATION SYSTEM SECURITY MANAGER (ISSM) RISK MANAGEMENT FRAMEWORK (RMF) PROCESS STEPS IN ACCORDANCE NAVSEA 9400.2-M AND USN RISK MANAGEMENT FRAMEWORK PROCESS GUIDE, SUPPORTED BY THE SYSTEM ENGINEERS AND SYSTEM INFORMATION SYSTEM SECURITY ENGINEERS (ISSES).

8) MAINTAINS AND REPORTS SYSTEM'S ACCREDITATION AND AUTHORIZATION (A&A) STATUS AND ISSUES.

9) PARTICIPATE IN RMF PROCESS MEETINGS

Required Skills

- Degree in Engineering or BS in Computer Science, desired

- Candidate must have an active SECRET Security Clearance (day 1), required

- CompTIA Security+

- CISSP or CEH Certificates, plus

- Self-Starter with the ability to lead others and push projects to completion

Required Experience

- Risk Management Framework (RMF) or Certification and Accreditation (DIACAP) experience required

- Prior DoD package development experience a (plus)

- 5+ years Vulnerability Assessment and Mitigation experience required

- DoD STIG experience required

Equal Opportunity Employer–minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity.

McKean Defense is an E-Verify company.

Job Location
Philadelphia, Pennsylvania, United States
Position Type
Full-Time/Regular

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online